<?php require_once('Connections/mysql.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
{
  if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
  }

  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

  switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;    
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
  }
  return $theValue;
}
}
?>
<?php
// *** Validate request to login to this site.
if (!isset($_SESSION)) {
  session_start();
}

$loginFormAction = $_SERVER['PHP_SELF'];
if (isset($_GET['accesscheck'])) {
  $_SESSION['PrevUrl'] = $_GET['accesscheck'];
}

if (isset($_POST['username'])) {
  $loginUsername=$_POST['username'];
  $password=md5($_POST['password']);
  $MM_fldUserAuthorization = "type";
  $MM_redirectLoginSuccess = "main/main.php";
  $MM_redirectLoginFailed = "index.php";
  $MM_redirecttoReferrer = false;
  mysql_select_db($database_mysql, $mysql);
  	
  $LoginRS__query=sprintf("SELECT id,username, password, type FROM users WHERE username=%s AND password=%s",
  GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text")); 
   
  $LoginRS = mysql_query($LoginRS__query, $mysql) or die(mysql_error());
  $loginFoundUser = mysql_num_rows($LoginRS);
  if ($loginFoundUser) {
    
    $loginStrGroup  = mysql_result($LoginRS,0,'type');
	$loginID=mysql_result($LoginRS,0,'id');
    
	if (PHP_VERSION >= 5.1) {session_regenerate_id(true);} else {session_regenerate_id();}
    //declare two session variables and assign them
    $_SESSION['MM_Username'] = $loginUsername;
    $_SESSION['MM_UserGroup'] = $loginStrGroup;	    
	$_SESSION['MM_UserID'] = $loginID;	    

    if (isset($_SESSION['PrevUrl']) && false) {
      $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];	
    }
    header("Location: " . $MM_redirectLoginSuccess );
  }
  else {
    header("Location: ". $MM_redirectLoginFailed );
  }
}

?><head><title>The Realm of Wanderers</title></head>

<meta charset="utf-8" />
<link href="css/trow_game_classic.css" rel="stylesheet" type="text/css" />
<body>
 <div class="picture" id="title_pic"></div> 
 <div align="center" id="title">The Realm<br/>of<br/>
 Wanderers</div> 
 <div align="center" id="login">
 <form action="<?php echo $loginFormAction; ?>" method="POST">
 <input 
 	type="text" 
    name="username" 
    value="User name" 
    onFocus="if(this.value=='User name')this.value='';" 
 />
 <br/>
 <input 
 	type="password" 
    name="password" 
    value="Password" 
    onFocus="if(this.value=='Password')this.value='';" 
 />
 <br/>
<!-- 自定义CSS:<br>
 <input 
 	name="custom_css" 
    type="text" 
 />-->
 <input name="登陆" type="submit" value="登陆" />
 </form>
 <a href="register/register.php">注册</a>
</div> 
  <div style="text-align: center; border-top: 2px solid #999; margin-top: 1em; font-size:12px">
  
  <p><a href="#">帮助</a>·<a href="#">讨论</a>·<a href="#">项目页面</a>·<a href="#">Email作者</a></p>
  <p style="font-size: 0.6em;">©2010 版权所有 BX trow.cn</p>
  </div>
</body>